Stores system Enterprise Identity Mapping (EIM) connection information from the eimadmin command.
This file is used to store system Enterprise Identity Mapping (EIM) connection information from the eimadmin command. Use the eimadmin command to create and update this file. The connection information stored by the eimadmin.conf file includes the EIM domain and its controlling server, the identity with which to authenticate (bind) to the server, and the authentication method.
The meanings of the eimadmin.conf file's fields are as follows:
Item | Description |
---|---|
LdapURL | Specifies the URL and port for the LDAP server controlling
the EIM data. This field takes the following format:
|
KerberosRegistry | Specifies the name of a Kerberos registry. |
LocalRegistry EimDomain | Specifies the full distinguished name (DN) of the EIM domain.
This name begins with ibm-eimDomainName= and consists
of the following elements:
|
ConnectionMethod | Specifies the method of authentication to the LDAP server.
You can select one of the following methods:
|
BindDn | The distinguished name to use for the simple bind to LDAP.
For example, cn=admin. The bind distinguished name
has one of the following EIM authorities:
|
BindPassword | Specifies the password associated with the bind DN. |
SSLKeyFile | The name of the SSL key database file, including the full path
name. If the file cannot be found, the name of a RACF® key ring that contains
authentication certificates is used. This value is required for SSL
communications with a secure LDAP host. For example:
|
SSLKeyPassword | The password required to access the encrypted information in
the key database file. As an alternative, you can specify an SSL password
stash file by prefixing the stash file name with file://. For example:
|
SSLKeyCert | Identifies which certificate to use from the key database file or RACF key ring. If a certificate label is not specified, the default certificate in the file or ring is used. |
-> /usr/bin/eimadmin -X -d ibm-eimDomainName='ibm-eimDomainName=MyDomain,o=ibm,c=us'
-h 'ldap://keystone.austin.ibm.com:389' -S 'SIMPLE'-b 'cn=admin' -w 'secret'
-> cat /etc/eimadmin.conf
EimConfiguration:
LdapURL="ldap://keystone.austin.ibm.com:389"
KerberosRegistry=""
LocalRegistry=""
EimDomain="ibm-eimDomainName=MyDomain,o=ibm,c=us"
ConnectionMethod="SIMPLE-b"
BindDn=""
BindPassword=""
SSLKeyFile=""
SSLKeyPassword=""
SSLKeyCert=""
->
Item | Description |
---|---|
/etc/eimadmin.conf | Contains the eimadmin.conf file. |